Today I will Show you how to Bypass Joomla token and find user name.
The vulnerability is reported in all 1.5.x versions prior to 1.5.6.
Dork:index.php?option=com_user&view=reset&layout=confirm
Copy and paste this Dork in google and you will get the result.
For Eg:http://site.com/index.php?option=com_user&view=reset&layout=confirm
For Eg:http://site.com/index.php?option=com_user&view=reset&layout=confirm
After getting this kind of page just put Qoute ( ' ) in the Submit button and then click on Submit.
After that you will get the option to reset the Password. :-)
Once you have reset the Passsword it will show you the login page .
Now you have to find the Username . :-)
Now go to the URL and paste this dork
index.php?option=com_fireboard&Itemid=71&func=userlist
Eg: http://site.com/index.php?option=com_fireboard&Itemid=71&func=userlist
Here you will get the Username for login. :-)
Now you have get the Username and password for the login..Try It . :)
Yeppee...You have access the Administrator Panel..
Note:Special thanks to Shriniwas.!!!
This comment has been removed by the author.
ReplyDeleteyour website is good n visited it daily.....
ReplyDeletesee this website
http://www.allitreview.com/
Its very helpful to those who seems like destructive mind. As well very good to those who want to be secure in this destructive world.
ReplyDeleteI like it very much.